What is the severity of CVE-2024-30052?

CVE-2024-30052 is classified as a Remote Code Execution vulnerability.

How do I fix CVE-2024-30052?

To remediate CVE-2024-30052, update to the latest version of Visual Studio 2022 or the specified versions of Visual Studio 2019 or Visual Studio 2017.

Which versions of Visual Studio are affected by CVE-2024-30052?

CVE-2024-30052 affects Visual Studio 2017 version 15.9, Visual Studio 2019 version 16.0 to 16.11, and Visual Studio 2022 version 17.4 to 17.8.

Is CVE-2024-30052 exploitable remotely?

Yes, CVE-2024-30052 can be exploited remotely by an attacker.

What are the potential impacts of CVE-2024-30052?

The potential impact of CVE-2024-30052 includes unauthorized remote execution of code on affected systems.

Vulnerability/
CVE-2024-30052

medium

4.7

CWE

693

11/6/2024

31/12/2024

CVE-2024-30052: Visual Studio Remote Code Execution Vulnerability

First published: Tue Jun 11 2024(Updated: )

Visual Studio Remote Code Execution Vulnerability

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Visual Studio 2022	=17.6	fix available externally
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)	=16.11	fix available externally
Microsoft Visual Studio 2022	=17.10	fix available externally
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)	=15.9	fix available externally
Microsoft Visual Studio 2022	=17.8	fix available externally
Microsoft Visual Studio 2019	>=15.0<15.9.63
Microsoft Visual Studio 2019	>=16.0<=16.11.37
Microsoft Visual Studio 2022	>=17.4<17.4.20
Microsoft Visual Studio 2022	>=17.6<17.6.16
Microsoft Visual Studio 2022	>=17.8<17.8.11
Microsoft Visual Studio 2022	>=17.10<17.10.2

Remedy

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30052

Never miss a vulnerability like this again

Reference Links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30052 (Advisory)

Frequently Asked Questions

What is the severity of CVE-2024-30052?
CVE-2024-30052 is classified as a Remote Code Execution vulnerability.
How do I fix CVE-2024-30052?
To remediate CVE-2024-30052, update to the latest version of Visual Studio 2022 or the specified versions of Visual Studio 2019 or Visual Studio 2017.
Which versions of Visual Studio are affected by CVE-2024-30052?
CVE-2024-30052 affects Visual Studio 2017 version 15.9, Visual Studio 2019 version 16.0 to 16.11, and Visual Studio 2022 version 17.4 to 17.8.
Is CVE-2024-30052 exploitable remotely?
Yes, CVE-2024-30052 can be exploited remotely by an attacker.
What are the potential impacts of CVE-2024-30052?
The potential impact of CVE-2024-30052 includes unauthorized remote execution of code on affected systems.

agent/title
agent/type
agent/references
collector/msrc-cve
source/Microsoft
agent/software-canonical-lookup
agent/first-publish-date
agent/description
agent/author
agent/weakness
agent/severity
collector/msrc
collector/nvd-api
source/NVD
agent/remedy
agent/event
agent/softwarecombine
agent/tags
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
vendor/microsoft
canonical/microsoft visual studio 2022
version/microsoft visual studio 2022/17.6
canonical/microsoft visual studio 2019 (includes 16.0 - 16.10)
version/microsoft visual studio 2019 (includes 16.0 - 16.10)/16.11
version/microsoft visual studio 2022/17.4
version/microsoft visual studio 2022/17.10
canonical/microsoft visual studio 2017 (includes 15.0 - 15.8)
version/microsoft visual studio 2017 (includes 15.0 - 15.8)/15.9
version/microsoft visual studio 2022/17.8
canonical/microsoft visual studio 2019
version/microsoft visual studio 2019/15.0
version/microsoft visual studio 2019/16.0
version/microsoft visual studio 2019/16.11.37